Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/22/02bca2-ae30-48e2-b333-ce4e31ce1518/1/48rcrxqbopFoMljpOBS3jJPxgpU.roa
File: 48rcrxqbopFoMljpOBS3jJPxgpU.roa (raw, json)
Hash identifier: I3Zev/pv+1MOuyQ1F8EJK0w0OCJhGr77khEs6kJ9Bf4=
Subject key identifier: E3:CA:DC:AF:1A:9B:A2:91:68:32:58:E9:38:14:B7:8C:93:F1:82:95
Certificate issuer: /CN=8e1a48721ff43b18057ef4174a9d396a981c6693
Certificate serial: 01856CA5D65236BF47EF8E2A98688132BA06
Authority key identifier: 8E:1A:48:72:1F:F4:3B:18:05:7E:F4:17:4A:9D:39:6A:98:1C:66:93
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/jhpIch_0OxgFfvQXSp05apgcZpM.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/22/02bca2-ae30-48e2-b333-ce4e31ce1518/1/48rcrxqbopFoMljpOBS3jJPxgpU.roa
Signing time: Sun 01 Jan 2023 09:24:45 +0000
ROA not before: Sun 01 Jan 2023 09:24:45 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60855
IP address blocks: 195.42.231.0/24 maxlen: 24
Validation: Failed, certificate revoked
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6c:a5:d6:52:36:bf:47:ef:8e:2a:98:68:81:32:ba:06
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=8e1a48721ff43b18057ef4174a9d396a981c6693
Validity
Not Before: Jan 1 09:24:45 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=e3cadcaf1a9ba291683258e93814b78c93f18295
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9e:89:bb:33:7b:b0:f4:9d:a8:36:e6:2c:81:39:
fa:cf:fa:2a:bb:3b:73:08:d4:95:72:9a:e3:b5:a0:
95:56:f0:4b:3f:c9:62:e9:3d:dc:66:7f:09:02:df:
be:8f:ce:3c:e5:bb:43:05:de:2c:7e:89:58:77:f2:
d7:a2:92:de:9c:d8:81:a6:5f:15:c6:ad:02:c5:af:
b8:a2:43:6f:25:c4:df:34:51:91:46:c3:ac:09:d8:
5c:12:82:78:4d:7e:97:bc:12:35:87:73:49:55:ff:
87:a7:f5:2a:5a:69:6c:5e:b3:bb:79:6e:8d:35:52:
05:15:fd:b9:fa:25:39:c1:df:8d:4f:51:76:e5:41:
76:c3:0d:60:59:ad:a6:01:a0:cc:3b:9f:9a:55:5b:
5f:45:fd:f3:0c:c6:d5:42:08:70:0b:a4:9d:c7:94:
1e:2a:d0:c4:5b:df:c8:91:43:20:61:f0:3f:36:db:
d8:9f:34:93:92:5d:d8:17:de:72:74:c0:11:5f:27:
53:c8:35:f0:67:6a:33:96:74:d8:d8:7d:4f:28:e5:
e6:21:45:74:44:1e:dd:02:b5:9c:c7:ab:e0:c8:6f:
b8:94:77:9b:9b:18:39:c7:54:4e:40:ba:5a:2f:00:
39:a9:c8:fb:69:0b:d2:14:09:e0:c3:1b:0d:67:f9:
6b:65
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E3:CA:DC:AF:1A:9B:A2:91:68:32:58:E9:38:14:B7:8C:93:F1:82:95
X509v3 Authority Key Identifier:
keyid:8E:1A:48:72:1F:F4:3B:18:05:7E:F4:17:4A:9D:39:6A:98:1C:66:93
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/jhpIch_0OxgFfvQXSp05apgcZpM.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/22/02bca2-ae30-48e2-b333-ce4e31ce1518/1/48rcrxqbopFoMljpOBS3jJPxgpU.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/22/02bca2-ae30-48e2-b333-ce4e31ce1518/1/jhpIch_0OxgFfvQXSp05apgcZpM.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.42.231.0/24
Signature Algorithm: sha256WithRSAEncryption
aa:a2:a1:e5:31:68:ee:16:c7:6c:de:2a:37:18:42:fe:f8:e0:
2c:94:65:89:f2:db:1a:25:c8:e9:10:3a:80:f6:6f:5a:e9:56:
64:45:24:b7:60:2e:87:23:be:7d:4b:c3:e0:8e:ba:d7:b2:40:
3d:e9:b9:62:c8:0c:ba:11:77:d0:52:d5:1d:fe:92:32:70:dd:
69:6f:4e:75:87:f8:48:37:9e:30:71:80:4d:20:ec:bf:d9:37:
20:c7:33:7e:b7:ad:bf:c1:cb:53:05:df:3c:87:12:77:94:72:
ff:46:39:2f:61:ba:71:e2:51:b7:01:c6:a9:e6:1f:61:46:2a:
b9:6e:9b:a4:60:28:c4:0c:a0:0f:16:c3:61:c4:85:73:be:3f:
a4:6b:da:54:60:63:63:74:45:81:71:d9:23:2d:09:43:92:29:
1c:12:d0:ff:34:0d:33:a8:4b:66:a8:65:b1:1c:f9:a3:12:2c:
58:35:70:9e:25:98:b3:99:12:7b:5d:85:af:22:aa:a1:86:28:
1d:f5:89:1e:94:68:06:56:4a:d1:c5:b9:49:6c:7c:a4:d6:0e:
13:0d:8d:e0:58:c5:37:30:c1:a1:38:ef:a8:73:e6:a9:6d:00:
2e:f3:b5:ca:81:2e:50:42:24:64:d8:3c:99:85:03:20:03:1b:
49:9b:9b:81
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jan 1 04:00:50 2024 by rpki-client on console.sobornost.net